Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

863254c01c...3b.pdf

windows7-x64

1

863254c01c...3b.pdf

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20231215-en
  • resource tags

    arch:x64arch:x86image:win7-20231215-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2023, 10:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    863254c01c7c5fd138a139e0cc8d523b.pdf

  • Size

    46KB

  • MD5

    863254c01c7c5fd138a139e0cc8d523b

  • SHA1

    6f351913092669bc33a45107177f86acf6d66d4b

  • SHA256

    6a5d519022db69e4c50bdd05987d0975e2353003aeaf478032c85f807568728d

  • SHA512

    9d7a8ddb56f82e3bf90cb0058ce0c46ba386e455102bb3da8a7cdb34466892c54ffc4d566c1fe4527e3df167d7558280fac50193543e82ce30ce020f3693437a

  • SSDEEP

    768:4dgQwB3v6WM4OWxEBmtn2InDLCakF8vMaG3Qk2RKxZcUEi45266CNZpUcIa:4y5B3vy3W97JmOMaG3Q7IxZcSU266CNL

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe
    "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\863254c01c7c5fd138a139e0cc8d523b.pdf"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:2088

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Roaming\Adobe\Acrobat\9.0\SharedDataEvents
    Filesize

    3KB

    MD5

    6b4e1546dc6d8d0fd80f690b3d7827e3

    SHA1

    72dac98d12d792da7f7318c1db36cfa7260b46da

    SHA256

    66016287df077409fa555662bdb762ffff5df3d9290c8f275d743ef09d8747b7

    SHA512

    4882fdb1ec72d63d0ba2141a8f8a97dc810668785cf7f27b8dc62dc7a21a48725de569f935d9f599839751b5de8a93ece86d6af4f72e73d72dc93dbd016adb40

    Download Submit